rinpatch
6bc9e5c020
Mastodon API: Refresh the object before rendering it after voting
5 years ago
rinpatch
444406167b
Mastodon API: actually check for poll votes
5 years ago
rinpatch
65db5e9f52
Resolve merge conflicts
5 years ago
rinpatch
300d94c628
Add poll votes
...
Also in this commit by accident:
- Fix query ordering causing exclude_poll_votes to not work
- Do not create notifications for Answer objects
5 years ago
feld
f8d4c02431
Merge branch 'doc/mongoose-im-config' into 'develop'
...
Sample Mongoose IM config
See merge request pleroma/pleroma!1226
5 years ago
feld
abedcca349
Sample Mongoose IM config.
...
Change domain, ensure paths to PEM files are correct, and this is good to go.
5 years ago
lambda
3415962d60
Merge branch 'fix/mastodon-user-search' into 'develop'
...
Fix/mastodon user search
See merge request pleroma/pleroma!1224
5 years ago
feld
6872c5f88f
Mastodon API search default value for "resolve" is false
...
https://docs.joinmastodon.org/api/rest/accounts/
https://docs.joinmastodon.org/api/rest/search/
5 years ago
lambda
2993361075
Merge branch 'hotfix/leaking-lists' into 'develop'
...
Mastodon API: Fix lists leaking private posts
See merge request pleroma/pleroma!1222
5 years ago
rinpatch
d9c0650ff9
Mastodon API: Fix lists leaking private posts
...
Our previous list visibility resolver grabbed posts if either follower
collection of the user in a list who is followed is in `to` or if
follower collection of the user in a list was in `cc`. This not only
missed unlisted posts but also lead to leaking private posts when
`fix_explicit_addressing` mistakingly started putting follower collections
to `cc` (also fixed in this MR).
Reported by @kurisu@iscute.moe via a DM
5 years ago
rinpatch
a9eaa55885
Fix fix_explicit_addressing moving follower collection to cc and add tests for it
5 years ago
feld
3cc00fd2e9
Merge branch 'fix/install-guide' into 'develop'
...
Formatting
See merge request pleroma/pleroma!1219
5 years ago
feld
88414151b4
Formatting
5 years ago
feld
3c1c478125
Merge branch 'fix/install-guide' into 'develop'
...
Install docs should clone from master branch
See merge request pleroma/pleroma!1218
5 years ago
feld
75a37a68d4
Install docs should clone from master branch
5 years ago
feld
73a7420c23
Merge branch 'fix/ogp-missing-data' into 'develop'
...
Replace missing non-nullable Card attributes with empty strings
See merge request pleroma/pleroma!1217
5 years ago
Sergey Suprunenko
1690be991e
Replace missing non-nullable Card attributes with empty strings
5 years ago
lambda
91ac8b075b
Merge branch 'use-pleroma-config' into 'develop'
...
Use Pleroma.Config everywhere
See merge request pleroma/pleroma!1214
5 years ago
Egor Kislitsyn
99f70c7e20
Use Pleroma.Config everywhere
5 years ago
kaniini
ab3f3af7cf
Merge branch 'revert-57e58d26' into 'develop'
...
Revert "Merge branch 'feature/search-authenticated-only' into 'develop'"
See merge request pleroma/pleroma!1212
5 years ago
kaniini
6aec0d1b58
Revert "Merge branch 'feature/search-authenticated-only' into 'develop'"
...
This reverts merge request !1209
5 years ago
lambda
7e889786b8
Merge branch 'fix/mastodon-search-limit' into 'develop'
...
Default search limit should be 40
See merge request pleroma/pleroma!1210
5 years ago
lambda
6fb67b74da
Merge branch 'issue/936' into 'develop'
...
[#936 ] fix tests
See merge request pleroma/pleroma!1208
5 years ago
Maksim
db94294dfb
[ #936 ] fix tests
5 years ago
Mark Felder
672fddb721
Default search limit should be 40
...
https://docs.joinmastodon.org/api/rest/search/
5 years ago
kaniini
57e58d2602
Merge branch 'feature/search-authenticated-only' into 'develop'
...
router: require oauth_read for searching
Closes #935
See merge request pleroma/pleroma!1209
5 years ago
William Pitcock
0159a6dbe9
router: require oauth_read for searching
...
Search calls are generally expensive and allow unauthenticated users to
crawl the instance for user profiles or posts which contain specified
keywords. An adversary can build a distributed search engine which not
only will consume significant instance resources, but also can be used
for undesirable purposes such as datamining.
Accordingly, require authenticated access to use the search API endpoints.
This acts as a nice balance as it allows guest users to make use of most
functionality available in Pleroma FE while ensuring that Pleroma
instances are reasonably protected from resource exhaustion. It also
removes Pleroma as a potential vector in distributed search engines.
5 years ago
feld
26e7613824
Merge branch 'varnish-improvements' into 'develop'
...
More Varnish improvements
See merge request pleroma/pleroma!667
5 years ago
feld
abc15b6dcc
Improve Varnish config. We set sane headers from the backend now.
5 years ago
kaniini
b949a37ef5
Merge branch 'respect-proxy-settings-federation' into 'develop'
...
Respect proxy settings federation
See merge request pleroma/pleroma!1206
5 years ago
jeff
9f3bcf0efe
Respect proxy settings federation
5 years ago
lambda
5bb843ceec
Merge branch 'refactor/die-httpoison-die' into 'develop'
...
remove @httpoison, @ostatus and @websub compile-time constants
See merge request pleroma/pleroma!1203
5 years ago
kaniini
d66cf4b2c4
Merge branch 'fix/mrf-simple' into 'develop'
...
mrf: simple policy: fix matching imported activitypub and ostatus statuses
Closes #915
See merge request pleroma/pleroma!1205
5 years ago
William Pitcock
79503ce90f
mrf: simple policy: fix matching imported activitypub and ostatus statuses
5 years ago
William Pitcock
56fd7dbdd7
remove @websub and @ostatus module-level constants
5 years ago
William Pitcock
80d55d428f
tests: websub: check only that signature validation succeeds or fails
5 years ago
William Pitcock
9bec891eb4
kill @httpoison
5 years ago
kaniini
9f44fa0686
Merge branch 'fix/nodeinfo-unavailable-when-not-federating' into 'develop'
...
Keep nodeinfo available when not federating
Closes #923
See merge request pleroma/pleroma!1202
5 years ago
Aaron Tinio
9415932af5
Keep nodeinfo available when not federating
5 years ago
kaniini
625fec58ff
Merge branch 'bugfix/mention-all-people-in-beginning-dm' into 'develop'
...
Mention all people in the beginning of DM
Closes #924
See merge request pleroma/pleroma!1194
5 years ago
Sergey Suprunenko
bbea5691da
Mention all people in the beginning of DM
5 years ago
kaniini
8a0ee011ac
Merge branch 'feature/static-headers' into 'develop'
...
Improve serving of static assets
See merge request pleroma/pleroma!1200
5 years ago
feld
f916e4cdd9
Move the Cache Control header test to its own file
...
We can consolidate our cache control header tests here
5 years ago
lambda
6499adc6a8
Merge branch 'reverse_proxy_upstream_v4_fix' into 'develop'
...
explicitly set reverse proxy upstream to IPv4
Closes #930
See merge request pleroma/pleroma!1197
5 years ago
Alfie Pates
356c047759
explicitly set reverse proxy upstream to IPv4
...
since Pleroma.Web.Endpoint binds on IPv4 only and `localhost.` resolves to
[::0] on some systems
fixes #930 .
5 years ago
rinpatch
8b2d39c1ec
Change the order of preloading when fetching activities for context
5 years ago
kaniini
75e78d4e23
Merge branch 'feature/mrf-user-filter' into 'develop'
...
mrf: add support for filtering users
See merge request pleroma/pleroma!1188
5 years ago
rinpatch
e6b175ed6c
Fix credo issues
5 years ago
kaniini
f0516d9114
Merge branch 'ssh-fixes' into 'develop'
...
Ssh fixes
Closes #869 and #925
See merge request pleroma/pleroma!1191
5 years ago
William Pitcock
7d9b33b3ce
update documentation for the new MRF features [no-ci]
5 years ago